Lucene search
K

41 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-46604

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset. CVE-2026-46604 Note that Nessus relies on the presence of the...

7.5CVSS5.8AI score0.00346EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-46602

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The TIFF decoder does not set a limit on the size of tiles in tiled images, permitting a malicious or corrupt image containing a very large tile to cause...

7.5CVSS5.8AI score0.00339EPSS
Exploits0References3
OSV
OSV
added 2026/06/26 9:16 p.m.3 views

DEBIAN-CVE-2026-46604

The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset...

7.5CVSS5.8AI score0.00346EPSS
Exploits0References1
CVE
CVE
added 2026/06/26 8:22 p.m.13 views

CVE-2026-46604

The CVE-2026-46604 entry concerns a panic in the Go TIFF decoder (golang.org/x/image/tiff) when decoding a malformed image containing an out-of-bounds strip offset. Affected component: TIFF decoding path in golang.org/x/image/x/image/tiff. Root cause: decoding invalid TIFF data triggers a panic d...

7.5CVSS5.8AI score0.00346EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/06/26 8:22 p.m.25 views

CVE-2026-46604 Panic decoding image with out-of-bounds strip offset in x/image/tiff in golang.org/x/image

The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset...

0.00346EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/26 8:22 p.m.7 views

CVE-2026-46604

The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset...

7.5CVSS5.8AI score0.00346EPSS
Exploits0References4
OSV
OSV
added 2026/06/26 8:4 p.m.4 views

GO-2026-5066 Panic decoding image with out-of-bounds strip offset in x/image/tiff in golang.org/x/image

The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset...

7.5CVSS5.8AI score0.00346EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/26 12:0 a.m.8 views

PT-2026-52971

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description The TIFF decoder can panic when processing an invalid image that contains an out-of-bounds strip offset. A panic is a critical error that causes a program to cra...

7.5CVSS5.8AI score0.00346EPSS
Exploits0References10
CVE
CVE
added 2026/06/25 7:47 p.m.12 views

CVE-2026-46602

The CVE-2026-46602 issue affects the TIFF decoder in golang.org/x/image: it does not enforce a limit on tile sizes in tiled TIFF images, which can lead to unbounded memory consumption when processing a malicious or corrupted image with a very large tile. This is stated across multiple sources in ...

7.5CVSS5.9AI score0.00339EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/25 7:47 p.m.21 views

CVE-2026-46602 Lack of limit on tile sizes in x/image/tiff in golang.org/x/image

The TIFF decoder does not set a limit on the size of tiles in tiled images, permitting a malicious or corrupt image containing a very large tile to cause unbounded memory consumption...

0.00339EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/08 8:59 p.m.15 views

CVE-2026-46599

A flaw was found in the golang.org/x/image/tiff package's TIFF decoder. This vulnerability occurs because the decoder does not properly limit the size of PackBits-compressed data. A remote attacker could exploit this by providing a maliciously-crafted image, leading to the decoder processing...

7.5CVSS5.8AI score0.00353EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/05/30 12:0 a.m.16 views

Linux Distros Unpatched Vulnerability : CVE-2026-46599

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The TIFF decoder does not place a limit on the size of PackBits-compressed data. A maliciously-crafted image can exploit this to cause a small image both in ter...

7.5CVSS5.8AI score0.00353EPSS
Exploits0References3
OSV
OSV
added 2026/05/29 8:16 p.m.10 views

DEBIAN-CVE-2026-46599

The TIFF decoder does not place a limit on the size of PackBits-compressed data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height and encoded size to make the decoder decode large amounts of compressed data...

7.5CVSS5.8AI score0.00353EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/29 7:35 p.m.13 views

CVE-2026-46599

The TIFF decoder does not place a limit on the size of PackBits-compressed data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height and encoded size to make the decoder decode large amounts of compressed data...

5.8AI score0.00353EPSS
Exploits0References5
CVE
CVE
added 2026/05/29 7:35 p.m.35 views

CVE-2026-46599

The CVE-2026-46599 entry corresponds to excessive resource consumption in the TIFF PackBits decompression in golang.org/x/image/tiff. The root cause is that the TIFF decoder does not place a limit on the size of PackBits-compressed data, enabling a malicious image (even small in dimensions) to dr...

7.5CVSS5.8AI score0.00353EPSS
Exploits0References4
OSV
OSV
added 2026/05/29 7:17 p.m.14 views

GO-2026-5032 Excessive resource consumption in PackBits decompression in golang.org/x/image/tiff

The TIFF decoder does not place a limit on the size of PackBits-compressed data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height and encoded size to make the decoder decode large amounts of compressed data...

7.5CVSS5.8AI score0.00353EPSS
Exploits0References3
Snyk
Snyk
added 2026/03/25 6:2 p.m.3 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the tiff decoder. An attacker can trigger excessive memory allocation by submitting a specially crafted TIFF file, potentially leading to resource exhaustion or denial of service...

6.9CVSS5.9AI score0.00328EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.2 views

MiracleLinux 3 : libtiff-3.8.2-7.2 (AXSA:2008-91:01)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2008-91:01 advisory. The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. TIFF is a widely used file format for...

6.8CVSS8.4AI score0.0413EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-0761

Malware in sbrugna...

5CVSS6.1AI score0.0166EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-2378

Malicious code in bioql PyPI...

6.5CVSS6.8AI score0.0086EPSS
Exploits0References12
Rows per page
Query Builder